Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/_eMM2xMy59W1nK-q6_06-djliWM.roa
File: _eMM2xMy59W1nK-q6_06-djliWM.roa (raw, json)
Hash identifier: pz/j6nwo5P++Hz3rsg2HKd6WWh+JJTNRGVZb3+ozLcw=
Subject key identifier: FD:E3:0C:DB:13:32:E7:D5:B5:9C:AF:AA:EB:FD:3A:F9:D8:E5:89:63
Certificate issuer: /CN=d1e013ec8a5c56df241a9b2563d111f8e543bf91
Certificate serial: 018A4B6C033EBC500AB4D909008A50883F0F
Authority key identifier: D1:E0:13:EC:8A:5C:56:DF:24:1A:9B:25:63:D1:11:F8:E5:43:BF:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0eAT7IpcVt8kGpslY9ER-OVDv5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/_eMM2xMy59W1nK-q6_06-djliWM.roa
Signing time: Thu 31 Aug 2023 11:48:04 +0000
ROA not before: Thu 31 Aug 2023 11:48:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216445
IP address blocks: 185.160.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4b:6c:03:3e:bc:50:0a:b4:d9:09:00:8a:50:88:3f:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1e013ec8a5c56df241a9b2563d111f8e543bf91
Validity
Not Before: Aug 31 11:48:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fde30cdb1332e7d5b59cafaaebfd3af9d8e58963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:d0:dc:33:69:33:fc:d0:92:c9:dc:6d:d4:2c:
29:8e:a0:c2:d7:74:51:56:96:b2:9e:4b:41:9f:18:
51:11:2d:cc:d3:45:94:6b:cf:04:63:b6:55:0a:b3:
bf:a8:bf:37:17:90:82:8e:0d:9b:76:40:84:e9:60:
63:da:89:c6:c2:86:93:00:ab:9a:52:71:f1:a9:5d:
af:07:f8:13:94:88:72:d0:ba:82:6c:ea:fe:b6:18:
37:8c:c1:31:fa:ff:5b:5d:61:36:14:2a:1a:27:7f:
7a:2b:18:ec:0f:1d:4d:4e:9e:66:44:5b:b9:26:68:
40:42:b1:2f:43:67:ba:de:51:82:02:0b:e1:d7:90:
9d:62:9a:fa:cf:97:77:fd:2c:27:a3:92:14:aa:a5:
e1:03:a6:ae:4f:ee:50:97:3a:da:b0:c0:5b:dd:ee:
e7:24:46:47:19:70:dd:63:bd:14:61:64:ac:79:8b:
7b:af:83:51:76:98:3a:2d:5e:75:c8:65:1e:11:30:
c1:01:c0:42:81:f3:73:fd:7c:d1:ea:a9:f3:ae:a5:
32:1e:31:91:93:8a:59:d5:28:1b:af:cf:16:f7:9d:
e3:eb:e2:b6:04:54:d6:bf:53:ae:bd:53:d1:d6:8d:
45:b2:30:13:47:00:9a:96:1b:f5:96:25:23:b8:0c:
7a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:E3:0C:DB:13:32:E7:D5:B5:9C:AF:AA:EB:FD:3A:F9:D8:E5:89:63
X509v3 Authority Key Identifier:
keyid:D1:E0:13:EC:8A:5C:56:DF:24:1A:9B:25:63:D1:11:F8:E5:43:BF:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0eAT7IpcVt8kGpslY9ER-OVDv5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/_eMM2xMy59W1nK-q6_06-djliWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/0eAT7IpcVt8kGpslY9ER-OVDv5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.30.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:67:49:74:f0:2f:12:6a:01:47:a7:55:6b:e7:81:b8:d5:78:
1e:f6:7a:4f:54:a0:e4:60:f7:01:bc:5f:65:74:ae:2b:bd:ad:
a2:52:ed:3b:e1:8e:5f:dd:56:60:5a:4d:4d:c5:8e:d4:2f:33:
78:c4:44:15:8f:be:ce:52:88:3f:6b:51:12:a7:8c:97:bd:0c:
29:f9:35:31:af:08:5a:29:44:9e:ec:89:a8:73:7a:9c:36:e1:
18:8b:5c:9f:54:9a:3b:60:ee:b6:40:f1:bb:d0:41:3d:d9:e6:
9b:2c:55:de:14:f2:40:8b:77:60:40:70:a9:32:f8:2f:ca:c4:
6f:8e:01:86:59:16:2e:0c:bb:fd:7a:8b:7b:84:58:e6:85:04:
b8:fa:93:ae:6a:f8:81:09:ad:a8:b9:9a:38:05:c0:45:f0:07:
19:4b:e7:83:48:c5:df:60:ad:68:3f:a3:ef:c6:1f:9b:35:17:
4d:c7:23:f5:a2:61:83:53:eb:f4:94:7c:08:11:e9:65:86:f6:
41:1d:f3:f5:09:6d:2b:f1:a8:94:f2:32:95:52:19:2f:fe:d5:
96:8a:2c:fc:ce:7f:ef:ee:04:d5:f1:fd:d5:3d:cb:ac:31:a0:
f0:a0:ee:3a:0f:87:de:1c:64:b6:57:de:df:63:d0:77:6d:81:
54:2c:ab:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 03:48:37 2025 by rpki-client